LARTC - May 2002 - bad idee or?

i want to do:

iptables -t mangle -A PREROUTING .... -j MARK
....
multiples marks with different mark
iptables -t mangle -A POSTROUTING ... -j MARK
...
multiples marks with different mark

iptables -t mangle -A POSTROUTING -j IMQ


practicaly i want to prioritise/limit all the trafic in and out, by
different complex/wheird rules on an linux router with 4 real interfaces
and 3 more virtual, the trafic is at about 5Mbit with the ISP, and
spikes of 20Mbit on some "local" interfaces.

so the ideea is too mark the trafic in the PRE, and POST ROUTING table
(this is the place where i have all the trafic), and at the end of the
ROUTING process to put all the trafic throw IMQ, shape/prio it and the
let it go to the real interfaces where i do some ganeral interface
limiting

so the ideea is good or not .... :)

C

It how it is supposed to work IMHO :)

On Sun, 5 May 2002, Ciprian Niculescu wrote:
> i want to do:
>
> iptables -t mangle -A PREROUTING .... -j MARK
> ....
> multiples marks with different mark
>
> so the ideea is too mark the trafic in the PRE, and POST ROUTING table
> (this is the place where i have all the trafic), and at the end of the
> ROUTING process to put all the trafic throw IMQ, shape/prio it and the
> let it go to the real interfaces where i do some ganeral interface
> limiting
>
> so the ideea is good or not .... :)